ENDGAME PLATFORM

A single host agent for prevention, detection and response, managed by a single UI and Security Operations tier. Cloud, on-premises, and hybrid options meet global compliance and privacy requirements of complex, distributed organizations. We support Windows, Mac, Linux, and Solaris.

KERNEL BEHAVIOR PREVENTION

MODELS AND MACHINE LEARNING

Built through a collaboration between threat experts and data scientists, Endgame’s models block more than 99% of malware and ransomware before it causes damage.

ADVERSARY BEHAVIOR PROTECTIONS

Adversary Behavior Protections are runtime analytics that detect malicious attacker behavior with high confidence across the MITRE ATT&CK matrix.

ENDGAME OPERATIONS PLATFORM

PREVENTION, DETECTION, RESPONSE

Endgame Operations streamlines advanced capabilities such as EDR, incident response, and threat hunting with a user experience and workflow that is designed and used by world class security researchers.

SPEED AND SCALE

Endgame’s unique new architecture collects and analyzes 260 million events generated by 100,000 endpoints in 1 second and scales linearly to 1,000,000+ endpoints.

INTELLIGENT AUTOMATION

Endgame architecture provides interfaces to operators of all levels of expertise. Analysts from Tier 1 to Tier 3 will find improved efficiency as incident responders and threat hunters.

ENDGAME GLOBAL SERVICES

CLOUD DRIVEN

Provides unmatched scalability, centralizes reporting and business analytics, and provides secure API access to all event data and contextual information collected by an organization.

GLOBAL SEARCH

Search against real-time and historic event data from endpoints that are online, as well as those endpoints that are offline or outside of the corporate network.

FLEXIBILITY & SCALE

The hybrid cloud and on-premise architecture allows even the most complex organizations with localized bandwidth constraints, distributed across geographic regions and organizations with segmented network architectures, to scale linearly to millions of endpoints with ease.

Full Prevention and Detection At Scale

The autonomous agent provides both online and disconnected endpoints complete prevention against malware and fileless attacks, and implements adversary technique detection and response across the MITRE ATT&CK™ framework.

Intelligent Automation

Endgame’s Artemis® ResolverTM, and EQL automate investigation and threat hunting workflows eliminating the biggest barriers to immediate productivity for investigators, hunters, and IT operations. Using plain English, global attack visualization, and the industry's first event query language optimized for security investigation, users of all experience levels can interact intuitively through a graphical, interactive UI to observe every attacker process, event, and file or registry modification across an entire incident.

Total Attack Lookback

Endgame Total Attack LookbackTM is the industry's first forensic review feature to exceed adversary dwell time, providing a complete record of critical threat intelligence data. Total Attack Lookback ensures rapid and accurate assessment of the origin and extend of an attack, meets notification requirements, and minimizes exposure to compliance and regulatory violations.

How We Stack Up

ENDGAME

Crowdstrike
Falcon platform

Cylance
Protect+Optics

Symantec Endpoint
Protection 14

Pre-execution prevention

Malware and ransomware

Malwareless attacks

Phishing

Software-based exploits

Hardware-based exploits

Post-execution prevention

Behavioral ransomware

Fileless attacks

MITRE ATT&CK™ matrix coverage

Operational efficiency

Autonomous agent; no round trip to cloud

Single agent for prevention, detection and response, hunting

Tamper-resistant agent

Light weight agent

Automated EDR

Natural language-based investigation

Intuitive Attack Visualization

Malware sandboxing

Guided precision response

Automated Threat Hunting

User-defined rules to cover MITRE matrix

Endgame Platform Architecture

How We Stack Up

See how Endgame will increase protection and improve endpoint operations